Langgenius Dify Server-Side Request Forgery Vulnerability in DOCX File Processing

A Server-Side Request Forgery (SSRF) vulnerability exists in Langgenius Dify version 0.10.2. The issue arises in the 'Create Knowledge' section when DOCX files are uploaded. If the DOCX file contains external relationships, the reltype value is fetched as a URL using the 'requests' module, bypassing the intended 'ssrf_proxy' protection. This flaw allows attackers to exploit the SSRF vulnerability. The vulnerability was addressed in version 0.11.0.

Impact

Exploitation of this vulnerability allows attackers to access internal network resources, attack internal web services, scan hosts on the internal network, and potentially access AWS metadata endpoints.

Reproduction

To reproduce this vulnerability, upload a DOCX file containing external image relationships to the 'Create Knowledge' section of the Dify application. The 'WordExtractor' will process the file and, due to the vulnerability, will make requests to the external URLs using the 'requests' module instead of the 'ssrf_proxy'. This can be verified by monitoring the application's network activity or by accessing the SSRF results through the application's workflow features.

Remediation

Users can update to Dify version 0.11.0 or later, where this vulnerability has been fixed.